Free Online Fortinet NSE8_812 Practice Test

Prepare Your Fortinet NSE8_812 Exam Questions with Free online NSE8_812 Practice Test. Get Brilliant Fortinet NSE 8 - Written Exam (NSE8_812) Exam Results with Valid NSE8 812 Exam Dumps.

Page: 1 / 12

Total 60 Questions | Updated On: Apr 22, 2024

Question 1

Refer to the exhibit.

The exhibit shows the forensics analysis of an event detected by the FortiEDR core

In this scenario, which statement is correct regarding the threat?

A : This is an exfiltration attack and has been stopped by FortiEDR.

B : This is an exfiltration attack and has not been stopped by FortiEDR

C : This is a ransomware attack and has not been stopped by FortiEDR.

D : This is a ransomware attack and has been stopped by FortiEDR

Answer: D

Question 2

Refer to the exhibit.

A FortiWeb appliance is configured for load balancing web sessions to internal web servers. The Server Pool

is configured as shown in the exhibit.

How will the sessions be load balanced between server 1 and server 2 during normal operation?

A : Server 1 will receive 25% of the sessions, Server 2 will receive 75% of the sessions

B : Server 1 will receive 20% of the sessions, Server 2 will receive 66.6% of the sessions

C : Server 1 will receive 33.3% of the sessions, Server 2 will receive 66 6% of the sessions

D : Server 1 will receive 0% of the sessions Server2 will receive 100% of the sessions

Answer: D

Question 3

Refer to the exhibits.

A FortiGate cluster (CL-1) protects a data center hosting multiple web applications. A pair of FortiADC

devices are already configured for SSL decryption (FAD-1), and re-encryption (FAD-2). CL-1 must accept

unencrypted traffic from FAD-1, perform application detection on the plain-text traffic, and forward the

inspected traffic to FAD-2.

The SSL-Offload-App-Detect application list and SSL-Offload protocol options profile are applied to the

firewall policy handling the web application traffic on CL-1.

Given this scenario, which two configuration tasks must the administrator perform on CL-1? (Choose two.)

A :

B :

C :

D :

Answer: B,C

Question 4

Refer to the exhibit.

To facilitate a large-scale deployment of SD-WAN/ADVPN with FortiGate devices, you are tasked with

configuring the FortiGate devices to support injecting of IKE routes on the ADVPN shortcut tunnels.

Which three commands must be added or changed to the FortiGate spoke config vpn ipsec phasei-interface

options referenced in the exhibit for the VPN interface to enable this capability? (Choose three.)

A : set net-device disable

B : set mode-cfg enable

C : set ike-version 1

D : set add-route enable

E : set mode-cfg-allow-client-selector enable

Answer: A,D

Question 5

On a FortiGateConfigured in Transparent mode, which configuration option allows you to control Multicast

traffic passing through the?

A :

B :

C :

D :

Answer: C

Page: 1 / 12

Total 60 Questions | Updated On: Apr 22, 2024